Cite article sources + embed PNG architecture diagram + validator multi-format

- README quote attribution now links Wiedemann's CIO interview source.
- Replit incident gets the Tom's Hardware article link inline.
- Renamed Splunk-references section to "Citations and sources" and added
  every external URL referenced in the demo voiceover or the README body:
  IBM Cost of a Data Breach 2024, Verizon DBIR 2024, Tom's Hardware Replit
  coverage, CVE-2024-5184 on NVD, Wiedemann's CIO video, Splunk RSAC 2026
  agentic-products blog.
- README + architecture_diagram.md now reference architecture_diagram.png
  (renders once the drawio export lands at root) and link the .drawio source.
- scripts/validate_all.py treats any of architecture_diagram.{md,png,pdf} at
  root as satisfying the Devpost requirement.

Author: JonathanSolvesProblems

README.md

@@ -8,7 +8,7 @@ A Splunk-native pre-action governance and blast-radius layer for AI agents. Buil
 
 Splunk shipped six agentic capabilities in twelve months: Triage Agent, Investigation Agent, Malware Reversal Agent, AI Playbook Authoring, AI Assistant for SPL, Foundation-Sec-8B. Every one of them can read your data, propose changes, and (increasingly) execute them. **None of them answers compliance's question: who approved this action, and what was its blast radius?**
 
-> *"The most likely outcome is that compliance and governance teams block the application from going to production."* — Jeff Wiedemann, Global AI Partner Technical Leader, Splunk
+> *"The most likely outcome is that compliance and governance teams block the application from going to production."* — Jeff Wiedemann, Global AI Partner Technical Leader, Splunk ([source: CIO interview](https://www.cio.com/video/4167955/splunk-tackles-ai-agent-blind-spots-with-new-observability-tools.html))
 
 AgentGate is the gate between any AI agent and Splunk that produces an answerable trail of every decision.
 
@@ -26,7 +26,9 @@ The **sixth stage** runs Foundation-Sec-1.1-8B-Instruct as an **advisory Finding
 
 Every verdict, regardless of outcome, fans out to the `agentgate_audit` index via HEC. The bundled dashboard makes it the system of record for AI-agent governance.
 
-See [architecture_diagram.md](architecture_diagram.md) for the full diagram, module map, and deterministic-vs-generative thesis.
+![AgentGate architecture: agent plane → 5-stage gate pipeline + advisory reasoning → Splunk outputs](architecture_diagram.png)
+
+See [architecture_diagram.md](architecture_diagram.md) for the full module map and deterministic-vs-generative thesis; source diagram lives in [architecture_diagram.drawio](architecture_diagram.drawio).
 
 ## Measured performance
 
@@ -70,7 +72,7 @@ The cost of getting AI-agent governance wrong is not hypothetical, and the numbe
 
 Real recent incidents in the shape AgentGate guards against:
 
-- **July 2025 — Replit's coding agent destroyed a customer's production database** despite an explicit code freeze instruction, and admitted to it on the next prompt. Widely reported; SaaStr's Jason Lemkin was the customer. POL-004 (destructive primitive) + POL-009 (mutation of system-of-record) would have blocked this pre-execution.
+- **July 2025 — Replit's coding agent destroyed a customer's production database** despite an explicit code freeze instruction, and admitted to it on the next prompt. Widely reported; SaaStr's Jason Lemkin was the customer ([Tom's Hardware coverage](https://www.tomshardware.com/tech-industry/artificial-intelligence/ai-coding-platform-goes-rogue-during-code-freeze-and-deletes-entire-company-database-replit-ceo-apologizes-after-ai-engine-says-it-made-a-catastrophic-error-in-judgment-and-destroyed-all-production-data)). POL-004 (destructive primitive) + POL-009 (mutation of system-of-record) would have blocked this pre-execution.
 - **CVE-2024-5184** — indirect prompt-injection vulnerability in an open-source LLM agent runtime, on NVD. The OWASP LLM01 family has continued to grow through 2025. POL-006 covers this attack class with measured precision 1.000 on the committed corpus.
 - **Splunk's own MCP Telemetry Dashboard (May 2026)** exists because customers are already running production AI agents against Splunk and ASKING for governance visibility. AgentGate is the pre-action half of the same need.
 
@@ -168,20 +170,34 @@ The hackathon's resources page names five capability families. AgentGate touches
 - **Best Use of Splunk Hosted Models** ($1K) — Foundation-Sec-1.1-8B-Instruct on the reasoning stage, demonstrably swappable to the Splunk-hosted invocation in production.
 - **Best Use of Splunk Developer Tools** ($1K) — Built on the public `splunk-sdk` Python SDK (`splunklib.client` + `splunklib.results`), the Splunk REST API, KV-store collections, HEC, dashboard XML, and a fully-formed app bundle in `splunk_app/agentgate/` (savedsearches.conf, collections.conf, transforms.conf, dashboard XML, app.conf, metadata).
 
-## Splunk references
+## Citations and sources
+
+Every external claim in this README and in the demo video has a source URL.
 
-Official docs and resources the build aligns to:
+**Splunk product and capability docs**
 
 - [Splunk MCP Server on Splunkbase (app 7931)](https://splunkbase.splunk.com/app/7931)
 - [About MCP Server for Splunk platform](https://help.splunk.com/en/splunk-cloud-platform/mcp-server-for-splunk-platform/1.2/about-mcp-server-for-splunk-platform)
 - [Splunk MCP Server: Making Your Apps Agent-Ready](https://community.splunk.com/t5/Product-News-Announcements/GA-Splunk-MCP-Server-Making-Your-Apps-quot-Agent-Ready-quot/ba-p/759935)
-- [Foundation-Sec-1.1-8B-Instruct on Hugging Face](https://huggingface.co/fdtn-ai/Foundation-Sec-8B-Instruct)
 - [Splunk Hosted Models overview](https://www.splunk.com/en_us/blog/artificial-intelligence/splunk-launches-hosted-generative-ai-models.html)
+- [Foundation-Sec-1.1-8B-Instruct on Hugging Face](https://huggingface.co/fdtn-ai/Foundation-Sec-8B-Instruct)
 - [Splunk Python SDK (`splunk-sdk-python`)](https://github.com/splunk/splunk-sdk-python)
 - [Splunk Enterprise Security 8 API reference (Findings + Investigations)](https://help.splunk.com/en/splunk-enterprise-security-8/api-reference/8.3/splunk-enterprise-security-api-reference)
 - [Splunk Developer Program](https://dev.splunk.com/) (developer license)
 - [Splunk Community Slack — #splunk-ai-hackathon](https://splk.it/slack)
 
+**Pain quote and ecosystem context**
+
+- [Jeff Wiedemann (Splunk) on AI-agent observability — CIO video interview](https://www.cio.com/video/4167955/splunk-tackles-ai-agent-blind-spots-with-new-observability-tools.html)
+- [Splunk ES at RSAC 2026: six agentic capabilities listed](https://www.splunk.com/en_us/blog/security/from-reactive-to-agentic-with-enterprise-security-at-rsac-2026.html)
+
+**Cited harm anchors**
+
+- [IBM Cost of a Data Breach Report 2024](https://www.ibm.com/reports/data-breach) — $4.88M average breach figure
+- [Verizon Data Breach Investigations Report 2024](https://www.verizon.com/business/resources/reports/dbir/) — human element involved in 68% of breaches
+- [Tom's Hardware — Replit AI coding platform deletes customer's production database (July 2025)](https://www.tomshardware.com/tech-industry/artificial-intelligence/ai-coding-platform-goes-rogue-during-code-freeze-and-deletes-entire-company-database-replit-ceo-apologizes-after-ai-engine-says-it-made-a-catastrophic-error-in-judgment-and-destroyed-all-production-data)
+- [CVE-2024-5184 on NVD](https://nvd.nist.gov/vuln/detail/CVE-2024-5184) — indirect prompt-injection RCE in an open-source LLM agent runtime
+
 ## License
 
 Apache 2.0.

architecture_diagram.drawio

@@ -0,0 +1,123 @@
+<mxfile host="app.diagrams.net" agent="AgentGate" version="24.6.4">
+  <diagram name="AgentGate Architecture" id="agentgate-arch">
+    <mxGraphModel dx="1422" dy="800" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1654" pageHeight="1169" math="0" shadow="0" background="#1F1F1F">
+      <root>
+        <mxCell id="0" />
+        <mxCell id="1" parent="0" />
+
+        <mxCell id="lane1" value="AGENT PLANE" style="rounded=1;whiteSpace=wrap;html=1;verticalAlign=top;fontSize=18;fontStyle=1;fontColor=#FFFFFF;fillColor=#2A2A2A;strokeColor=#3A3A3A;spacingTop=8;" vertex="1" parent="1">
+          <mxGeometry x="40" y="40" width="1574" height="180" as="geometry" />
+        </mxCell>
+
+        <mxCell id="agent_claude" value="Claude" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#5A5A5A;fontColor=#FFFFFF;fontSize=14;fontStyle=1;" vertex="1" parent="1">
+          <mxGeometry x="130" y="100" width="280" height="80" as="geometry" />
+        </mxCell>
+
+        <mxCell id="agent_cursor" value="Cursor / MCP clients" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#5A5A5A;fontColor=#FFFFFF;fontSize=14;fontStyle=1;" vertex="1" parent="1">
+          <mxGeometry x="470" y="100" width="280" height="80" as="geometry" />
+        </mxCell>
+
+        <mxCell id="agent_triage" value="Splunk Triage Agent" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#5A5A5A;fontColor=#FFFFFF;fontSize=14;fontStyle=1;" vertex="1" parent="1">
+          <mxGeometry x="810" y="100" width="280" height="80" as="geometry" />
+        </mxCell>
+
+        <mxCell id="agent_soar" value="SOAR Playbook" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#5A5A5A;fontColor=#FFFFFF;fontSize=14;fontStyle=1;" vertex="1" parent="1">
+          <mxGeometry x="1150" y="100" width="280" height="80" as="geometry" />
+        </mxCell>
+
+        <mxCell id="lane2" value="AGENTGATE PIPELINE: 5 deterministic stages + 1 advisory" style="rounded=1;whiteSpace=wrap;html=1;verticalAlign=top;fontSize=18;fontStyle=1;fontColor=#FFFFFF;fillColor=#0D2E1F;strokeColor=#1F5C3D;spacingTop=8;" vertex="1" parent="1">
+          <mxGeometry x="40" y="260" width="1574" height="460" as="geometry" />
+        </mxCell>
+
+        <mxCell id="mcp_entry" value="Splunk MCP Server: every tool call intercepted" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#1A3D5C;strokeColor=#4DA6FF;fontColor=#FFFFFF;fontSize=14;fontStyle=1;" vertex="1" parent="1">
+          <mxGeometry x="130" y="310" width="1390" height="40" as="geometry" />
+        </mxCell>
+
+        <mxCell id="stage1" value="1. Injection&#10;&#10;pattern + homoglyph&#10;NIST AISC &#183; Anthropic&#10;AgentDojo &#183; INJECAGENT" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#1A3D2A;strokeColor=#4CAF50;fontColor=#FFFFFF;fontSize=12;" vertex="1" parent="1">
+          <mxGeometry x="80" y="380" width="270" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="stage2" value="2. Blast Radius&#10;&#10;NetworkX KO graph walk&#10;saved search &#8594; assets&#10;MITRE &#183; compliance tags" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#1A3D2A;strokeColor=#4CAF50;fontColor=#FFFFFF;fontSize=12;" vertex="1" parent="1">
+          <mxGeometry x="380" y="380" width="270" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="stage3" value="3. Cost&#10;&#10;SVC-hour estimate&#10;Cisco Deep Time Series&#10;Model (Cloud target)" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#1A3D2A;strokeColor=#4CAF50;fontColor=#FFFFFF;fontSize=12;" vertex="1" parent="1">
+          <mxGeometry x="680" y="380" width="270" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="stage4" value="4. Policy&#10;&#10;12 standards-mapped rules&#10;NIST AI RMF &#183; OWASP LLM&#10;PCI &#183; HIPAA &#183; SOX &#183; ISO 42001" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#1A3D2A;strokeColor=#4CAF50;fontColor=#FFFFFF;fontSize=12;" vertex="1" parent="1">
+          <mxGeometry x="980" y="380" width="270" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="stage5" value="5. Decision&#10;&#10;ALLOW | REQUIRE_APPROVAL | BLOCK&#10;reads ONLY policy stage&#10;fail-closed on exception" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3D2A1A;strokeColor=#FFC107;fontColor=#FFFFFF;fontSize=12;fontStyle=1;" vertex="1" parent="1">
+          <mxGeometry x="1280" y="380" width="270" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="stage6" value="6. Reasoning (advisory)&#10;&#10;Foundation-Sec-1.1-8B-Instruct&#10;Ollama on dev license &#183; Splunk Hosted Models in prod&#10;NEVER gates the verdict; paragraph attaches to the Finding" style="rounded=1;whiteSpace=wrap;html=1;dashed=1;fillColor=#2A2A3D;strokeColor=#7B6AFF;fontColor=#FFFFFF;fontSize=12;" vertex="1" parent="1">
+          <mxGeometry x="980" y="560" width="570" height="140" as="geometry" />
+        </mxCell>
+
+        <mxCell id="e12" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4CAF50;strokeWidth=2;" edge="1" parent="1" source="stage1" target="stage2">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e23" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4CAF50;strokeWidth=2;" edge="1" parent="1" source="stage2" target="stage3">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e34" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4CAF50;strokeWidth=2;" edge="1" parent="1" source="stage3" target="stage4">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e45" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#FFC107;strokeWidth=2;" edge="1" parent="1" source="stage4" target="stage5">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+
+        <mxCell id="e_c_mcp" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4DA6FF;strokeWidth=2;" edge="1" parent="1" source="agent_claude" target="mcp_entry">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e_cu_mcp" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4DA6FF;strokeWidth=2;" edge="1" parent="1" source="agent_cursor" target="mcp_entry">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e_t_mcp" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4DA6FF;strokeWidth=2;" edge="1" parent="1" source="agent_triage" target="mcp_entry">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e_s_mcp" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4DA6FF;strokeWidth=2;" edge="1" parent="1" source="agent_soar" target="mcp_entry">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+
+        <mxCell id="e_mcp_s1" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4CAF50;strokeWidth=2;" edge="1" parent="1" source="mcp_entry" target="stage1">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+
+        <mxCell id="e_reason" value="advisory only" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;dashed=1;strokeColor=#7B6AFF;strokeWidth=2;fontColor=#FFFFFF;fontSize=11;" edge="1" parent="1" source="stage6" target="stage5">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+
+        <mxCell id="lane3" value="SPLUNK OUTPUTS" style="rounded=1;whiteSpace=wrap;html=1;verticalAlign=top;fontSize=18;fontStyle=1;fontColor=#FFFFFF;fillColor=#2A2A2A;strokeColor=#3A3A3A;spacingTop=8;" vertex="1" parent="1">
+          <mxGeometry x="40" y="760" width="1574" height="220" as="geometry" />
+        </mxCell>
+
+        <mxCell id="out_hec" value="HEC Audit Index&#10;&#10;every decision&#10;index=agentgate_audit" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#5A5A5A;fontColor=#FFFFFF;fontSize=13;" vertex="1" parent="1">
+          <mxGeometry x="120" y="820" width="380" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="out_findings" value="ES 8 v2 Findings&#10;&#10;non-ALLOW verdicts&#10;/public/v2/investigations/{id}/findings&#10;KV-store mock during dev" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#FFC107;fontColor=#FFFFFF;fontSize=13;" vertex="1" parent="1">
+          <mxGeometry x="630" y="820" width="380" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="out_dash" value="Audit Dashboard&#10;&#10;Splunk simple-XML, dark theme&#10;traffic-light KPIs &#183; stage latency&#10;pending Findings &#183; block log" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#3A3A3A;strokeColor=#5A5A5A;fontColor=#FFFFFF;fontSize=13;" vertex="1" parent="1">
+          <mxGeometry x="1140" y="820" width="380" height="130" as="geometry" />
+        </mxCell>
+
+        <mxCell id="e_dec_hec" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4CAF50;strokeWidth=2;" edge="1" parent="1" source="stage5" target="out_hec">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e_dec_find" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#FFC107;strokeWidth=2;" edge="1" parent="1" source="stage5" target="out_findings">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+        <mxCell id="e_dec_dash" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=classic;strokeColor=#4CAF50;strokeWidth=2;" edge="1" parent="1" source="stage5" target="out_dash">
+          <mxGeometry relative="1" as="geometry" />
+        </mxCell>
+
+      </root>
+    </mxGraphModel>
+  </diagram>
+</mxfile>

architecture_diagram.md

@@ -2,6 +2,10 @@
 
 Splunk-native pre-action governance + blast-radius layer for AI agents acting on Splunk. Repository root canonical architecture artifact (Devpost-required filename).
 
+![AgentGate architecture: agent plane → 5-stage gate pipeline + advisory reasoning → Splunk outputs (HEC audit, ES 8 Findings, dashboard)](architecture_diagram.png)
+
+Source diagram editable in draw.io: [architecture_diagram.drawio](architecture_diagram.drawio).
+
 ## Three planes
 
 ```

scripts/validate_all.py

@@ -296,11 +296,23 @@ def c_pytest_fast() -> CheckResult:
 
 
 def c_repo_files() -> CheckResult:
-    required = ["LICENSE", "README.md", "architecture_diagram.md", ".env", "requirements.txt"]
+    required = ["LICENSE", "README.md", ".env", "requirements.txt"]
     missing = [f for f in required if not (REPO_ROOT / f).exists()]
+    # Devpost accepts any of .md / .png / .pdf for architecture_diagram
+    arch_candidates = [f"architecture_diagram{ext}" for ext in (".png", ".md", ".pdf")]
+    arch_present = [f for f in arch_candidates if (REPO_ROOT / f).exists()]
     if missing:
         return CheckResult("Repo files present", False, f"missing: {missing}", "")
-    return CheckResult("Repo files present", True, "LICENSE + README + architecture_diagram + .env + requirements")
+    if not arch_present:
+        return CheckResult(
+            "Repo files present", False,
+            "missing architecture_diagram.(md|png|pdf) at repo root",
+            "export the drawio as PNG to repo root",
+        )
+    return CheckResult(
+        "Repo files present", True,
+        f"LICENSE + README + {', '.join(arch_present)} + .env + requirements",
+    )
 
 
 def c_submission_artifacts() -> CheckResult: